CVE-2013-4738

codeaurora android-msm - Stack-Based Buffer Overflow via VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl

Title source: llm
STIX 2.1

Description

Multiple stack-based buffer overflows in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to gain privileges via (1) a crafted VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl call, related to drivers/media/platform/msm/camera_v2/pproc/vpe/msm_vpe.c, or (2) a crafted VIDIOC_MSM_CPP_DEQUEUE_STREAM_BUFF_INFO ioctl call, related to drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c.

Scores

EPSS 0.0027
EPSS Percentile 18.6%

Details

CWE
CWE-119
Status published
Products (2)
codeaurora/android-msm 2.6.29
qualcomm/quic_mobile_station_modem_kernel 3.4
Published Feb 03, 2014
Tracked Since Feb 18, 2026